×

Method and system for abstracted and randomized one-time use passwords for transactional authentication

  • US 9,519,764 B2
  • Filed: 10/20/2014
  • Issued: 12/13/2016
  • Est. Priority Date: 11/30/2010
  • Status: Active Grant
First Claim
Patent Images

1. A user authentication method comprising execution, by a processing system, of the steps of:

  • receiving a request from a user to initiate an authentication session, the request comprising a unique identifier of the user;

    accessing, using the unique identifier, a record stored in memory associated with the user, the stored record comprising at least a user-defined keyword consisting of an ordered sequence of symbols comprising members of a predetermined symbol set selected from one or more symbol sets supported by the processing system, wherein the symbols of the ordered sequence have been previously selected by the user independently of other users'"'"' selections;

    generating a one-time security matrix which is valid only for the user during the authentication session, and which comprises a mapping between each symbol within the predetermined symbol set and a code value which is specific to the authentication session and randomly selected from a code set which is distinct from the predetermined symbol set, a number of elements in the predetermined symbol set being greater than a number of elements in the code set, and wherein at least one of the number of elements in the predetermined symbol set and the number of elements in the code set has been selected to provide a predetermined level of security against capture of the user-defined keyword by an unauthorised observer;

    transmitting the one-time security matrix for presentation to the user;

    receiving an ordered sequence of code values selected from the one-time security matrix and input by the user, the ordered sequence of code values corresponding with the ordered sequence of symbols of the user-defined keyword and the mapping thereof to the code values in the one-time security matrix;

    validating the received ordered sequence of code values by comparison with an expected sequence of code values generated by the processing system and corresponding with the ordered sequence of symbols of the user-defined keyword and the mapping thereof to the code values in the one-time security matrix; and

    generating an authentication result of the authentication session based upon the comparison.

View all claims
  • 2 Assignments
Timeline View
Assignment View
    ×
    ×